Blogs

MISP 2.4.120 released (aka the timeline release)

January 21, 2020

MISP 2.4.120 released

A new version of MISP (2.4.120) has been released, including an extension to the data-model adding the first_seen and last_seen values at the attribute and object levels. The user-interface has been extended with a timeline view/editor per event, allowing users to see all occurrences of attributes and objects based on time. A new quick object edit tool has been added, enabling users to easily add new attributes to already existing objects. A long list of bugs were fixed and various improvements were made in the existing features.

Continue reading

MISP 2.4.119 released (aka the quality of life release)

December 4, 2019

MISP 2.4.119 released

A new version of MISP (2.4.119) has been released, including several functionalities that should make the operation of a MISP instance more convenient.

Continue reading

MISP 2.4.118 released (aka the exclusivity tag release and SightingDB support)

November 10, 2019

MISP 2.4.118 released

A new version of MISP (2.4.118) has been release including a functionality that allows for tag exclusivity within taxonomies, the support for external Sighting sources via SightingDB and many fixes.

Continue reading

Visualising common patterns using MISP and ATT&CK data

October 27, 2019

Visualising common patterns using MISP and ATT&CK data

Having access to a large amount of Threat information through MISP Threat Sharing communities gives you outstanding opportunities to aggregate this information and take the process of trying to understand how all this data fits together telling a broader story to the next level. We are transforming technical data or indicators of compromise (IOCs) into cyber threat intelligence. This is where the analytical challenge begins.

Continue reading

MISP 2.4.117 released (aka the the pre-conference season release)

October 11, 2019

MISP 2.4.117 released

A new version of MISP (2.4.117) has been release including major performance improvements in MISP and PyMISP, publish filter emails, throttling restSearch (very useful when you want to limit some users using the API of your MISP instance) and many more improvements.

Continue reading

Benefits of running your own MISP instance

September 25, 2019

Benefits of running your own MISP instance

One topic that regularly pops up during trainings and users that are just getting started with MISP in general is the question of running your own MISP versus using a hosted MISP instance. We have seen a lot of great efforts by ISACs, organisations with national or sectorial responsibilities leading the charge and acting as a central sharing hub for communities.

Continue reading

MISP 2.4.116 released (aka the new decaying feature)

September 17, 2019

MISP 2.4.116 released

A new version of MISP (2.4.116) has been release, including a long awaited major new feature that deals with decaying indicators in addition to a new ATT&CK sightings export and a new sync priority capability.

Continue reading

Decaying of Indicators - MISP improved model to expire indicators based on custom models

September 12, 2019

An improved and flexible model to expire indicators

This blog post aims to give a thorough introduction of a new functionality added in MISP 2.4.116, allowing users and organisations to easily expire information depending on their personalised objectives and targets.

Continue reading

MISP 2.4.115 released (aka CVE-2019-16202 and sync speed improvement)

September 10, 2019

MISP 2.4.115 released

A new version of MISP (2.4.115) with a major security fix (CVE-2019-16202) and various small improvements has been released. We strongly recommend all MISP users update to this version.

Continue reading

MISP 2.4.114 released (aka the community care package release)

August 31, 2019

MISP 2.4.114 released

A new version of MISP (2.4.114) with some new features supporting collaboration and a list of fixes and small improvements. We strongly recommend to update to this version.

Continue reading

MISP 2.4.113 released (aka the bugs fixing marathon)

August 19, 2019

MISP 2.4.113 released

A new version of MISP (2.4.113) with tons of fixes and small improvements. We strongly recommend to update to this version.

Continue reading

MISP 2.4.112 released (aka summer fixes and improvement)

August 1, 2019

MISP 2.4.112 released

A new version of MISP (2.4.112) has been released with a host of API fixes, improvements and a security fix.

Continue reading

MISP 2.4.111 released (aka improved proposal sync)

July 19, 2019

MISP 2.4.111 released

A new version of MISP (2.4.111) has been released with an improved proposal sync, minor improvements and bugs fixed.

Continue reading

MISP 2.4.110 released (aka local-tags and new MISP modules supporting MISP standard format)

July 8, 2019

MISP 2.4.110 released

A new version of MISP (2.4.110) has been released with a host of new features, improvements, many bugs fixed and one security fix. Even under the searing summer sun, the MISP-project team is hard at work, whilst enjoying some cocktails (with or without booze).

Continue reading

MISP 2.4.109 released (aka cool-attributes-to-object)

June 14, 2019

MISP 2.4.109 released

A new version of MISP (2.4.109) has been released with a host of new features, improvements, bug fixes and a minor security fix. We strongly advise all users to update their MISP installations to this latest version.

Continue reading

MISP 2.4.108 released (aka copy-paste-and-sync feature)

June 5, 2019

A new version of MISP (2.4.108) has been released with a host of new features, improvements and bugs fixed. We strongly advise all users to update their MISP installations to this latest version.

Continue reading

MISP 2.4.107 released (aka similar objects review, yara native export)

May 13, 2019

A new version of MISP (2.4.107) has been released with a host of new features, improvements and security fixes. We strongly advise all users to update their MISP installation to this latest version.

Continue reading

MISP 2.4.106 released (aka Too many improvements)

April 25, 2019

A new version of MISP (2.4.106) has been released with a host of improvements, including new features such as a feed cache search, CLI tools to manage your MISP instance along with improved diagnostics.

Continue reading

MISP 2.4.105 released (aka security fix for CVE-2019-10254)

March 28, 2019

A new version of MISP (2.4.105) has been released to fix a security vulnerability (CVE-2019-10254) in addition to some minor improvements and a fix for the STIX 1.1 import, enabling the import of files with additional namespaces (such as CISCP).

Continue reading

MISP 2.4.104 released (aka too many new features)

March 26, 2019

A new version of MISP (2.4.104) has been released with a host of new features such as new overlap feed comparator, a new graph visualisation of event and attribute distributions, a history/bookmark system for the REST client and many others.

Continue reading

Search

Tags